Authorization Bypass in Essential Real Estate by g5theme
CVE-2025-68071

Currently unrated

Key Information:

Vendor

WordPress
Status
Essential Real Estate
Vendor
CVE Published:
16 December 2025

What is CVE-2025-68071?

The Essential Real Estate plugin by g5theme contains an authorization bypass vulnerability that allows attackers to exploit improperly configured access controls. This weakness can result in unauthorized access to sensitive data or functionalities within the application, affecting versions from n/a up to 5.2.2.

Affected Version(s)

Essential Real Estate <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Plugin/esse...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

daroo | Patchstack Bug Bounty Program
JSON
.
CVE-2025-68071 : Authorization Bypass in Essential Real Estate by g5theme